CVE-2024-34005 | Moodle mod_data file inclusion

Posted by Angelo Barbosa | May 21, 2024 | CVE

A vulnerability was found in Moodle. It has been rated as critical. Affected by this issue is some unknown functionality of the component mod_data. The manipulation leads to file inclusion.

This vulnerability is handled as CVE-2024-34005. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-34005 | Moodle mod_data file inclusion

Related Posts

CVE-2022-4962 | Apollo 2.0.0/2.0.1 Configuration Center /users improper authorization (Issue 4684)

CVE-2024-27333 | Kofax Power PDF GIF File Parser out-of-bounds

CVE-2023-6236 | Red Hat Enterprise Application Platform OIDC App data authenticity

CVE-2024-41942 | jupyterhub up to 4.1.5/5.1.0 Group Membership insufficient privileges